Retiree bmail Application

Transcription

1 Retiree bmail Application (Get or keep address) UC Berkeley Retirement Center 101 University Hall, Berkeley, CA retirement.berkeley.edu Tel: (510) Fax: (510) Name: Date: UCB Employee ID: Birth Date: Dept. at Retirement: Retirement Date: Home Address: State: Are You Retired: City: Zip: Phone No:! Staff! Emeriti need not complete this form contact your home department Do you currently have a bmail account, or did you have one at retirement?! Yes! No! I certify that I have officially retired or will soon retire from UCB, LBNL, or UCOP and have received a lump-sum payment or pension from UCRS. Note: This service does not provide internet access. You must have a separate Internet Service Provider (ISP), such as AOL, SBC Yahoo!, Comcast, etc. to access your via the internet. Address Your address is usually your CalNet ID followed If you already have address, please list it here. If you do not have account, provide a first and second choice (i.e., yourname@berkeley.edu). address: Payment Information The charge for Retiree bmail is $70 per year, plus a onetime $10 set up fee. Payment by check or money order is due with this application. Make checks out for $80 payable to UC Regents. Please mail or hand-deliver this form with payment to the address above. 2nd Choice: Retiree bmail accounts are available to retirees of UC Berkeley, UCOP and LBNL to facilitate their continued association with the UC Berkeley community. Use of these electronic services is governed by the University of California Electronic Mail Policy and the Berkeley Campus Computer Use and Minimum Security Standards Policies. These services are not to be used for any commercial activities or activities expressly for the purpose of financial gain. I understand that misuse of these services may result in the revocation of these services. I agree to abide by these policies and the terms and conditions for use of these services. Further, I agree to pay the current annual charges for the Retiree bmail service. I understand that payments are to be made on an annual basis and cannot be refunded or prorated. Please allow five to ten business days to process your application. Signature: Date: Center Staff Use only Payment: Check #: Amount: Date Rec d: IST: ed! HCM: Open: From: to By: Closed: By: DB: Entered: By: Closed: By: 01/2014

2 What is a Retiree bmail account? Retiree bmail Service Retiree bmail provides students and staff with a campus address, a calendar, and document sharing service, all linked to the campus contacts directory. Retirees of UC Berkeley, UCOP and LBNL are eligible to have a Retiree bmail account through the UC Berkeley Retirement Center. Retiree bmail is accessed through your own Internet connection or through the web browser on any internet-connected computer. A Retiree bmail account includes all regular account features, including: address and bdrive, bcal, and contacts; the ability to send and receive ; ample (25GB as of June 2013) and document storage space; technical support from bmail consultants at consult@berkeley.edu, ( , ext. 125); and free anti-virus software downloads from Downloads require an active CalNet ID and passphrase (contact UCBRC for details). For details on the bmail and bconnected programs, refer to: Other policies and limitations of the basic bmail service also apply. All Retiree bmail users login with their CalNet ID and CalNet Passphrase. Most often, your CalNet ID followed is your address. If you do not have an active CalNet ID one will be set up for you when your application is processed. What is the charge for a Retiree bmail account? The charge is $70.00 annually, plus a one-time $10 set up fee. This charge is non-refundable and not prorated. Should you cancel your Retiree bmail account you simply will not be billed the following year. As soon as we receive your application at the UC Berkeley Retirement Center, your account will be created, usually within one week. Payment is due with application and may be made by check or money order. How do I pay? Submit your check made out to UC Regents with your application. Annual invoices are sent from the Retirement Center to the address provided on your application. All inquiries regarding your bill or account status should be directed to or via to: ucbrc@berkeley.edu Delinquent Payment Penalties and Procedures: Subsequent payments are due thirty days after you receive your annual invoice; once thirty days has passed, your account will be suspended until payment is received. If your account is suspended, you may lose all contents of your Retiree bmail account. Reinstatement of Service: When the past due amount is paid, your Retiree bmail access will be reinstated within seven business days. How do I cancel? Request for cancellation of your Retiree bmail account should be sent by to ucbrc@berkeley.edu or you can call Include the following information in your cancellation request: Name bmail address Postal Mailing address Phone number Effective date of cancellation Your account may be cancelled without notice if it appears to be associated with any violation of the Terms and Conditions of the UC Berkeley Computer Use Policy. How do I get help? For assistance setting up or accessing your Retiree bmail account, contact the Application Service Center Help Desk: Phone: , ext consult@berkeley.edu Or look online at the CSS Knowledge Base:

3 Revised: April 18, 2013 Minimum Standards for Security of Berkeley Campus Networked Devices The following minimum standards are required for devices connected to the campus network. 1. Software patch updates Campus networked devices must run software for which security patches are made available in a timely fashion. They also must have all currently available security patches installed. Exceptions may be made for patches that compromise the usability of critical applications. 2. Anti-virus software Anti-virus software for any particular type of device currently listed on the Approved Software website must be running and up-to-date on every level of device, including clients, file servers, mail servers, and other types of campus networked devices. 3. Host-based firewall software Host-based firewall software for any particular type of device currently listed on the Approved Software website must be running and configured according to the "Implementing Guidelines for the Minimum Standards for Security of Berkeley Campus Networked Devices", on every level of device, including clients, file servers, mail servers, and other types of campus networked devices. While the use of departmental firewalls is encouraged, they do not necessarily obviate the need for host-based firewalls. 4. Passwords Campus electronic communications systems or services must identify users and authorize access by means of passwords or other secure authentication processes (e.g. biometrics or Smart Cards). When passwords are used, they must meet the Minimum Password Complexity Standards. In addition, shared-access systems must enforce these standards whenever possible and appropriate and require that users change any pre-assigned passwords immediately upon initial access to the account. All default passwords for access to network-accessible devices must be modified. Where possible and appropriate: 1. devices should be configured with separate accounts for privileged and unprivileged access; 2. users should authenticate with an unprivileged account rather than a privileged account; 3. privileged access should occur through a privilege escalation mechanism which allows the log to show which user was granted additional privileges; 4. and privileged access should only be granted for as long as necessary to complete the task which requires additional privileges

4 5. No unencrypted authentication Unencrypted device authentication mechanisms are only as secure as the network upon which they are used. Traffic across the campus network may be surreptitiously monitored, rendering these authentication mechanisms vulnerable to compromise. Therefore, all campus devices must use only encrypted authentication mechanisms unless otherwise authorized by the CISPC. (See "Requests for Exception" in the Berkeley Campus Policy on Minimum Standards for Networked Device Security Configurations.) In particular, historically insecure services such as Telnet, FTP, SNMP, POP, and IMAP must be replaced by their encrypted equivalents. Traffic for one-time password authentication systems (e.g. S/Key, OPIE, SecureID) is exempted from this encryption requirement, because its exposure does not compromise the integrity of the underlying authentication system. 6. No unauthenticated relays Campus devices must not provide an active SMTP service that allows unauthorized third parties to relay messages, i.e., to process an message where neither the sender nor the recipient is a local user. Before transmitting to a non-local address, the sender must authenticate with the SMTP service. Authenticating the machine (e.g. IP address/domain name) rather than the sender is not sufficient to meet this standard. Unless an unauthenticated relay service has been reviewed by SNS and approved by the CISPC as to configuration and appropriate use, it may not operate on the campus network. 7. No unauthenticated proxy services Although properly configured unauthenticated proxy servers may be used for valid purposes, such services commonly exist only as a result of inappropriate device configuration. Unauthenticated proxy servers may enable an attacker to execute malicious programs on the server in the context of an anonymous user account. Therefore, unless an unauthenticated proxy server has been reviewed by SNS and approved by the CISPC as to configuration and appropriate use, it is not allowed on the campus network. In particular, software program default settings in which proxy servers are automatically enabled must be identified by the system administrator and re-configured to prevent unauthenticated proxy services. For more information on the types of software typically used for proxy services, see the "Implementing Guidelines for the Minimum Standards for Security of Berkeley Campus Networked Devices". 8. Physical security Unauthorized physical access to an unattended device can result in harmful or fraudulent modification of data, fraudulent use, or any number of other potentially dangerous situations. In light of this, where possible and appropriate, devices must be configured to "lock" and require a user to re-authenticate if left unattended for more than 20 minutes.

5 9. Unnecessary services If a service is not necessary for the intended purpose or operation of the device, that service shall not be running. The Policy mandating compliance with these Minimum Standards is the Berkeley Campus Policy on Minimum Standards for Networked Device Security Configurations For additional details to assist system administrators and end-users to configure their networked devices to comply with these Minimum Standards see: Appendix B Implementing Guidelines For assistance interpreting these Guidelines, or to request an exception from compliance with the Minimum Standards, contact: security-policy@berkeley.edu. University of California, Berkeley Terms and Conditions of Appropriate use for bmail bmail service users must comply with the bmail Requirements below, as well as with the University of California Electronic Communications Policy (ECP), the Berkeley Campus Computer Use Policy, the Campus Online Activities Policy, and all other laws and policies relevant to their conduct while using a Berkeley Campus electronic communication service. Users of bmail shall not give the impression that they are representing, giving opinions, or otherwise making statements on behalf of the Campus or any department or unit of the Campus unless appropriately authorized to do so. Nevertheless, because communications sent via bmail indicate an individual's affiliation with the University of California, Berkeley, users are expected to show courtesy and consideration in all their bmail communications. bmail users must not waste resources or interfere with others' use of electronic communications services. For example, users shall not send or forward chain letters, send spam, or intentionally engage in other practices such as "denial of service attacks" that impede the availability of electronic communications services. 1. Users must not share their individual account password with others. If an authorized user shares the individual account's password, that authorized user may be held responsible for any misuse of the account that occurred as a result. 2. If a shared use account is needed to conduct University business, a departmental account may be set up. The authorized administrative official who sponsors a departmental account shall be responsible for ensuring appropriate use of that account by all users. 3. Users must not use their bmail account for any commercial use for personal profit, including publishing their bmail address for such commercial activity contacts. Users must not use their bmail account for any commercial use on behalf of other individuals or on behalf of groups, unless authorized by campus administrative officials as being in support of the campus (1).

6 Examples of Misuse: Specific examples of violations of these Terms and Conditions include but are not limited to: * violations of copyright law * sending harassing * knowingly forwarding or originating hoaxes, scams, or other types of fraudulent messages * intentionally sending viruses, worms, or other "malware" * sending unsolicited mass mailings without the consent of all addressees, unless authorized on behalf of the campus by an appropriate administrative official (2) * forging messages or masking the identity of an account * any commercial use for personal profit Non-Compliance In addition to any possible legal sanctions, users who violate these Terms and Conditions of Appropriate Use of bmail may be subject to temporary or permanent service restriction and/or to disciplinary action up to and including dismissal or expulsion. Actions taken in response to alleged violations, as well as avenues available to the user for appeals of actions, will be in accordance with the procedures and due process rights contained in the policy or agreement governing the user's affiliation with the University. General Information For clarification of policies and guidelines applying to Berkeley Campus computing and communications resources, including this Computer Use Policy, contact itpolicy@berkeley.edu. Related policies are available online at the Campus IT policies website. If you would like to obtain paper brochure copies of this Computer Use Policy, including quantities to distribute at your campus location, please contact itpolicy@berkeley.edu. Reporting Misuse Report misuse of campus electronic communication resources to abuse@berkeley.edu.